why 2 ICMP (U) unreachable messages are missing?

Answered Question
Apr 14th, 2008

when I ping to an non-exist network, the next hop router reply the icmp reply (unreachable messge) to me. however, I could only find 3 U messages only. Where are the missing 2 U messages?

I also used debug ip packet detail and receive 3 icmp type 3 messages. not 5 messages.

fw#ping 200.0.0.1

Type escape sequence to abort.

Sending 5, 100-byte ICMP Echos to 200.0.0.1, timeout is 2 seconds:

U.U.U

Success rate is 0 percent (0/5)

I have this problem too.
0 votes
Correct Answer by Richard Burts about 8 years 7 months ago

Eric

When you ping to a non existant address then the router that receives the ping request and realizes that the destination address is not reachable will generate an ICMP unreachable error message and send it to the originator of the ping. However Cisco routers rate limit their ping responses (as a mechanism to help protect against Denial of Service attacks against the router). The router is receiving 5 requests which can not be forwarded and sends the ICMP error to 3. The other 2 are rate limited.

HTH

Rick

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
Richard Burts Tue, 04/15/2008 - 08:31

Eric

When you ping to a non existant address then the router that receives the ping request and realizes that the destination address is not reachable will generate an ICMP unreachable error message and send it to the originator of the ping. However Cisco routers rate limit their ping responses (as a mechanism to help protect against Denial of Service attacks against the router). The router is receiving 5 requests which can not be forwarded and sends the ICMP error to 3. The other 2 are rate limited.

HTH

Rick

Actions

This Discussion